Develop and enforce comprehensive security policies, rule sets, and zone segmentation aligned with Zero Trust principles.
Act as the top-tier subject matter expert for all security engineering, configuration, and troubleshooting.
Ensure alignment with federal Cybersecurity Maturity Model (CMMC2) / NIST 800-171 framework, as it relates across all security architectures, policies, and procedures.
As directed by leadership, implement STIGs and other security baselines to corporate systems, architecture, and applications.
In association with the Network Engineer, design, implement, and maintain firewalls.
In association with the Network Engineer, develop and enforce security policies for corporate IT, OT, and guest wireless networks, ensuring proper segmentation, secure authentication protocols, and encryption methods are in place.
Architect and optimize secure remote access solutions, utilizing Cisco ISE or similar enterprise VPN technologies, ensuring least privilege and multi-factor authentication (MFA) are implemented properly.
Lead the design, tuning, and integration of device logs into an enterprise SIEM.
Develop advanced correlation rules, alerts, dashboards, and reporting mechanisms to identify, prioritize, and track security threats and anomalies.
Conduct post-incident reviews to identify architectural gaps and define security enhancements.
Create and maintain and collaborate on enterprise-wide security standards, control baselines, and reference architectures.
In association with the ISSM, develop, maintain, and test an Incident Response Plan and playbooks.
In association with the ISSM, conduct regular security assessments and define remediation strategies to address control deficiencies.

Requirements

Ability to lawfully access information and technology that is subject to US export controls
BS in Cybersecurity or related technical field with 5+ years of relevant industry experience (9+ years’ experience in lieu of degree).
Expertise in network security design, deployment, and maintenance.
Deep understanding of IT/OT Networks architecture and technologies, including ZTNA, ABAC, Microsegmentation, and IEC 62443 Zones.
Professional experience in a Security Operations Center (SOC) or similar environment offering cybersecurity services.
Strong problem-solving skills with the ability to troubleshoot security issues and provide user support.
Excellent communication and interpersonal skills.
Flexibility and willingness to work overtime, including weekends and overnight as needed.
At least one DoD baseline security certification, such as CISSP, Sec+ , A+Sec, OR the ability to rapidly receive such certification.

Benefits

Holistic Compensation Package: Enjoy a world-class compensation package that includes a competitive salary, equity plan, and discretionary results-based incentive bonus opportunities, ensuring you're truly valued for your contributions.
Wellness and Time Off: Embrace a healthy lifestyle with paid vacation, sick time, and company holidays, including a year-end shutdown to recharge. We support growing families with paid parental leave, recognizing the importance of bonding time.
Comprehensive Health and Wellness: Prioritize your well-being with our comprehensive health and wellness benefits, offering both HMO and Premium PPO options. Additionally, benefit from company-sponsored life insurance and short and long-term disability coverage for peace of mind.
Investment in Growth: We're committed to your professional development. Take advantage of reimbursement opportunities for learning and development initiatives, empowering you to continuously expand your skill set and reach peak performance.
Collaborative and High-Performing Environment: Join our collaborative, dynamic, and high-performing team within a fast-paced, mission-driven company. Together, we're disrupting the traditional manufacturing industry, fostering innovation, and integrating people and technology to reduce our footprint.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security policiesZero Trust principlesCMMC2NIST 800-171STIGsfirewallsCisco ISEVPN technologiesmulti-factor authenticationSIEM

Soft Skills

problem-solvingcommunicationinterpersonalflexibilitywillingness to work overtime

Certifications

CISSPSec+A+Sec